Download PDF
Enhancing Web Application Security and Uptime with Fastly's Next-Gen WAF: A Case Study on amazee.io
Technology Category
- Cybersecurity & Privacy - Application Security
- Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
- Cement
- Construction & Infrastructure
Applicable Functions
- Maintenance
- Quality Assurance
Use Cases
- Construction Management
- Tamper Detection
Services
- Testing & Certification
The Challenge
amazee.io, an open-source application delivery solution provider, was facing challenges in maintaining the seamless operation of its ZeroOps platform. The company's customer base was expanding, and with it, the need for more robust security measures and certificate management. High-profile customers were using the Lagoon platform for business-critical applications, which necessitated stringent security demands. The company was also dealing with issues of false positives and alert fatigue, which were frequent irritants. Traditional Web Application Firewalls (WAFs) were proving to be inadequate, often blocking legitimate traffic or requiring constant tuning and re-tuning. Furthermore, one of amazee.io's major customers had an active bug bounty, which led to constant scanning of the site and required a significant upscaling of the customer's database cluster to handle the load.
About The Customer
amazee.io is an open-source application delivery solution provider that offers an infrastructure-independent, ZeroOps platform designed for Kubernetes-based cloud environments. The company hosts websites for major brands and government agencies on its Lagoon platform, guaranteeing up to 99.99% uptime. amazee.io's customers rely on the ZeroOps platform to work seamlessly, keeping infrastructure out of sight and out of mind. The company's customer base is diverse, with some prioritizing compliance, especially government agencies, while others are more concerned about downtime and the associated reputational risk and loss of revenue.
The Solution
amazee.io turned to Fastly's Next-Gen WAF and CDN to address these challenges. The Next-Gen WAF was a natural progression for the ZeroOps platform, offering a groundbreaking approach to web application security. Unlike traditional WAFs, Fastly's Next-Gen WAF uses SmartParse technology to take a contextual approach to traffic signals, allowing for more accurate blocking of bad behavior while allowing legitimate traffic. This solution was particularly beneficial for amazee.io, given the transient nature of IPs. The implementation of Fastly's Next-Gen WAF resulted in up to 80 percent of traffic being blocked before reaching the application, significantly reducing infrastructure costs. Additionally, Fastly's CDN and Next-Gen WAF enabled amazee.io to offer its clients 99.99% uptime, a critical selling point for the platform. Fastly's self-service tools also provided amazee.io with the flexibility to make changes to its infrastructure without requiring professional services involvement, enhancing agility and customer service.
Operational Impact
Quantitative Benefit
Related Case Studies.
Case Study
System 800xA at Indian Cement Plants
Chettinad Cement recognized that further efficiencies could be achieved in its cement manufacturing process. It looked to investing in comprehensive operational and control technologies to manage and derive productivity and energy efficiency gains from the assets on Line 2, their second plant in India.
Case Study
IoT System for Tunnel Construction
The Zenitaka Corporation ('Zenitaka') has two major business areas: its architectural business focuses on structures such as government buildings, office buildings, and commercial facilities, while its civil engineering business is targeted at structures such as tunnels, bridges and dams. Within these areas, there presented two issues that have always persisted in regard to the construction of mountain tunnels. These issues are 'improving safety" and "reducing energy consumption". Mountain tunnels construction requires a massive amount of electricity. This is because there are many kinds of electrical equipment being used day and night, including construction machinery, construction lighting, and ventilating fan. Despite this, the amount of power consumption is generally not tightly managed. In many cases, the exact amount of power consumption is only ascertained when the bill from the power company becomes available. Sometimes, corporations install demand-monitoring equipment to help curb the maximum power demanded. However, even in these cases, the devices only allow the total volume of power consumption to be ascertained, or they may issue warnings to prevent the contracted volume of power from being exceeded. In order to tackle the issue of reducing power consumption, it was first necessary to obtain an accurate breakdown of how much power was being used in each particular area. In other words, we needed to be able to visualize the amount of power being consumed. Safety, was also not being managed very rigorously. Even now, tunnel construction sites often use a 'name label' system for managing entry into the work site. Specifically, red labels with white reverse sides that bear the workers' names on both sides are displayed at the tunnel work site entrance. The workers themselves then flip the name label to the appropriate side when entering or exiting from the work site to indicate whether or not they are working inside the tunnel at any given time. If a worker forgets to flip his or her name label when entering or exiting from the tunnel, management cannot be performed effectively. In order to tackle the challenges mentioned above, Zenitaka decided to build a system that could improve the safety of tunnel construction as well as reduce the amount of power consumed. In other words, this new system would facilitate a clear picture of which workers were working in each location at the mountain tunnel construction site, as well as which processes were being carried out at those respective locations at any given time. The system would maintain the safety of all workers while also carefully controlling the electrical equipment to reduce unnecessary power consumption. Having decided on the concept, our next concern was whether there existed any kind of robust hardware that would not break down at the construction work site, that could move freely in response to changes in the working environment, and that could accurately detect workers and vehicles using radio frequency identification (RFID). Given that this system would involve many components that were new to Zenitaka, we decided to enlist the cooperation of E.I.Sol Co., Ltd. ('E.I.Sol') as our joint development partner, as they had provided us with a highly practical proposal.
Case Study
Splunk Partnership Ties Together Big Data & IoT Services
Splunk was faced with the need to meet emerging customer demands for interfacing IoT projects to its suite of services. The company required an IoT partner that would be able to easily and quickly integrate with its Splunk Enterprise platform, rather than allocating development resources and time to building out an IoT interface and application platform.
Case Study
Bridge monitoring in Hamburg Port
Kattwyk Bridge is used for both rail and road transport, and it has played an important role in the Port of Hamburg since 1973. However, the increasing pressure from traffic requires a monitoring solution. The goal of the project is to assess in real-time the bridge's status and dynamic responses to traffic and lift processes.
Case Study
Bellas Landscaping
Leading landscaping firm serving central Illinois streamlines operations with Samsara’s real-time fleet tracking solution: • 30+ vehicle fleet includes International Terrastar dump trucks and flatbeds, medium- and light-duty pickups from Ford and Chevrolet. Winter fleet includes of snow plows and salters.